Re: verifying rpms - public key not found
Daniel Kahn Gillmor wrote the following on 7/3/09 1:21 AM: [...] You're probably interested in something like gpg --verify, but i don't know exactly how signed .rpms work (i work with .debs mostly, which have external signatures), so hopefully someone else can pipe up with the specifics. If you signed your .rpm file with a detached signature, you might try: $ gpg --verify [path to]signature file[path to]signed file. Charly ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: verifying rpms - public key not found
-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Chris wrote: Why is my old email address still shown? Is the UID with Your 'old' address still on Your Key? You may wish to Set Your new address as the Primary UID and then revoke the UID with the 'old' address. HTH JOHN ;) Timestamp: Friday 03 Jul 2009, 11:37 --400 (Eastern Daylight Time) -BEGIN PGP SIGNATURE- Version: GnuPG v1.4.10-svn5046: (MingW32) Comment: Public Key at: http://tinyurl.com/8cpho Comment: Gossamer Spider Web of Trust: http://www.gswot.org Comment: Personal Web Page: http://tinyurl.com/yzhbhx iQEcBAEBCgAGBQJKTiW1AAoJEBCGy9eAtCsPy6EIAIRK8j1YBGDi5SxaLW/c/caA H1SZQEguI1cFXzBrUVp2Zt38x1UcqVdLPPHb9ZXgSWs5hRYGwvSY8wLUOmZTP3Dv dFwxhy0Ii0uuOPlmG/SjWe5d/4Ns5tezielJRZmhE6JZ5aCHvdjeMcgapLLkuvGS Qiyw9W8zlxtNRNU9/DWUBQpuiCwn0Z8UfKlNdYHMIvdPqfPoF7SVWN+nhwseLCZX yQGb+KOQKboOYwDTExXcrFr6/RtR/uqmjfIl7paoAqlu1gxbxV1n+VIBXeMnAOuO 49B2Cai/G+UpalEKIh32PaQloHKBW3TAjoTvEXuhQS6T2fxIf6gUR28eHShjBoA= =MtrV -END PGP SIGNATURE- ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: verifying rpms - public key not found
On Fri, 2009-07-03 at 11:37 -0400, John W. Moore III wrote: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Chris wrote: Why is my old email address still shown? Is the UID with Your 'old' address still on Your Key? You may wish to Set Your new address as the Primary UID and then revoke the UID with the 'old' address. HTH JOHN ;) Hi John, I found out the problem with after I was hit in the head with a 2x4, apparently something was wrong with my secring.gpg file. I copied from my backup over to the ~/.gnupg folder and everything looks ok again. I was even able to sign my clamav rpms: [ch...@localhost i586]$ gpg -K gpg: using character set `utf-8' gpg: using PGP trust model gpg: key 98E6705C: accepted as trusted key /home/chris/.gnupg/secring.gpg -- sec 1024D/98E6705C 2005-11-23 uid Chris Pollock cpoll...@earthlink.net uid Chris Pollock (New email address as of 04/21/07) cpoll...@embarqmail.com ssb 2048g/F5604046 2005-11-23 [ch...@localhost i586]$ rpm -v --checksig clamd-0.95.2-1mdv2009.1.i586.rpm clamd-0.95.2-1mdv2009.1.i586.rpm: Header V4 DSA signature: OK, key ID 98e6705c Header SHA1 digest: OK (975c02d67357a42e5698b3050deadae945434be7) MD5 digest: OK (424750ca8fe413cfc997cb41683c99cb) V4 DSA signature: OK, key ID 98e6705c Thanks again to you and everyone else who replied to this thread. One thing for sure backups definitely come in handy! Chris -- KeyID 0xE372A7DA98E6705C signature.asc Description: This is a digitally signed message part ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
verifying rpms - public key not found
When trying to verify an rpm that I built and signed I get: [ch...@localhost ~]$ gpg --check-sig /home/chris/ClamStuff/clamav-0.94.1-0.1.101mdk.i586.rpm gpg: using PGP trust model gpg: key 98E6705C: accepted as trusted key gpg: error reading key: public key not found This came from the fact that I'm trying to create Clamav rpms for Mandriva 2009.1 and I keep getting Pass phrase check failed after entering my pass phrase. I decided to check the sig on one I made last year and keep getting the above error. My ~/.gnupg folder looks like this: -rw-r--r-- 1 chris chris2137 2009-01-02 20:24 cpollock.asc drwx-- 2 chris chris4096 2009-02-26 17:37 dirmngr-cache.d/ -rw-r--r-- 1 chris chris 321 2009-02-08 11:19 dirmngr.conf -rw-r--r-- 1 chris chris 321 2009-02-08 11:06 dirmngr.conf.gpgconf.bak -rw-r--r-- 1 chris chris 851 2009-07-01 10:42 gpg-agent.conf -rw-r--r-- 1 chris chris 853 2009-02-08 11:19 gpg-agent.conf~ -rw-r--r-- 1 chris chris 853 2009-02-08 11:06 gpg-agent.conf.gpgconf.bak -rw-r--r-- 1 chris chris9289 2009-02-06 19:59 gpg.conf -rw-r--r-- 1 chris chris9178 2009-01-03 15:40 gpg.conf~ -rw-r--r-- 1 chris chris9209 2009-01-02 20:21 gpg.conf.gpgconf.bak -rw-r--r-- 1 chris chris 432 2009-02-08 11:19 gpgsm.conf -rw-r--r-- 1 chris chris 422 2009-01-02 19:06 gpgsm.conf~ -rw-r--r-- 1 chris chris 432 2009-02-08 11:06 gpgsm.conf.gpgconf.bak drwxrwxr-x 2 chris chris4096 2009-07-02 22:48 Hold/ srwxrwxr-x 1 chris chris 0 2009-02-08 11:19 log-socket= drwxrwxr-x 2 chris chris4096 2009-01-03 22:18 private-keys-v1.d/ -rw--- 1 chris chris 6497756 2009-07-01 17:46 pubring.gpg -rw--- 1 chris chris 6497756 2009-07-01 17:10 pubring.gpg~ -rw-rw-r-- 1 chris chris 17087 2009-02-26 17:37 pubring.kbx -rw-rw-r-- 1 chris chris 18116 2009-02-26 17:37 pubring.kbx~ -rw--- 1 chris chris 600 2009-07-02 21:32 random_seed -rw-r--r-- 1 chris chris 327 2009-02-08 11:19 scdaemon.conf -rw-r--r-- 1 chris chris 327 2009-02-08 11:06 scdaemon.conf.gpgconf.bak -rw--- 1 chris chris1311 2009-01-07 17:37 secring.gpg -rw--- 1 chris chris1480 2009-07-01 17:46 trustdb.gpg What am I missing and I'm sure it's right in front of my eyes. Thanks for any suggestions. Chris -- KeyID 0xE372A7DA98E6705C signature.asc Description: This is a digitally signed message part ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
Re: verifying rpms - public key not found
On 07/03/2009 12:04 AM, Chris wrote: When trying to verify an rpm that I built and signed I get: [ch...@localhost ~]$ gpg --check-sig /home/chris/ClamStuff/clamav-0.94.1-0.1.101mdk.i586.rpm gpg: using PGP trust model gpg: key 98E6705C: accepted as trusted key gpg: error reading key: public key not found --check-sig is for verifying certifications on keys, not for verifying signatures on arbitrary data. The man page isn't terribly clear about that if you didn't already know it though, unfortunately :( You're probably interested in something like gpg --verify, but i don't know exactly how signed .rpms work (i work with .debs mostly, which have external signatures), so hopefully someone else can pipe up with the specifics. hth, --dkg signature.asc Description: OpenPGP digital signature ___ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users